The first agentic security standard just dropped. Most deployments already fail it.
OWASP published in December 2025 the world’s first Top 10 for Agentic Applications, peer-reviewed by over 100 security experts. According to a Dark Reading survey, 48% of cybersecurity professionals name agentic AI the top attack vector for 2026 — yet only 34% of enterprises have AI-specific security controls in place.
In enterprise agentic deployments, the most dangerous failure modes are not external attacks. They are gradual privilege escalation from inside. One question consistently separates controlled deployments from high-risk ones: does the agent have its own isolated managed identity, or is it borrowing a user session? In the overwhelming majority of reviews I have conducted, agents run with excessive permissions — not out of negligence, but because nobody defined blast radius before going to production. ASI01 (Agent Goal Hijack) tops the list — a crafted email or PDF can silently redirect an agent’s objective without any infrastructure attack. Giskard For EMEA organizations, the EU AI Act adds a specific deadline: agents operating in HR, credit, or healthcare workflows are classified as high-risk and require formal documentation and human oversight before deployment.
Your governance review should start with one question: do you have a current inventory of every agent in your environment, the tools it can access, and the credentials it holds?
Read more: OWASP Top 10 for Agentic Applications 2026
Your SaaS vendor just lost a renewal they don’t know about yet.
Traditional B2B SaaS funding dropped 60% year-over-year in Q4 2025, while AI-native companies raised record amounts. Techbuzz Bain found that 78% of IT leaders expect agentic AI to replace or augment ERP functions within three years — yet only 6% would recommend their current systems integrator for that transition.
Companies are not making a conscious build-vs-buy decision. They simply start building, because one engineer with an AI agent can reconstruct a simple dashboard in an afternoon. The real question is not “will we replace SaaS?” It is: which tools have network effects, proprietary data, or SLAs an agent cannot replicate? Simple back-office tools with a CRUD layer and a subscription above €200 per seat are the most exposed. Before your next renewal, ask whether your team could reconstruct 70% of the tool’s functionality with an agent in a month. If the answer is yes — your vendor already knows.
Gartner predicts that by 2030, at least 40% of enterprise SaaS spend will shift toward usage-, agent-, or outcome-based pricing.
Read more: Bain & Company: Will Agentic AI Disrupt SaaS?
Sleep as a Diagnostic Signal
SleepFM in Nature Medicine — a foundation model trained on 585,000 hours of polysomnography data from 65,000 participants. Stanford University From a single night of sleep, it predicts risk for 130+ conditions including dementia (C-index 0.85), heart attack (0.81), and all-cause mortality (0.84).
The model generalizes well across independent clinical centers. The question heading to CDO desks: when does a wearable paired with a sleep foundation model become a standard early-warning tool — and what does that mean for your consent and data governance framework?
Read more: Nature Medicine — SleepFM
Leave A Comment